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Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

Listing of Claims; 

1 . (Currently amended) A validation protocol for determining whether an untrusted 
authentication chip is valid, or not, including the steps of: 

generating a random number in a trusted authentication chip; 

applying, in the trusted authentication chip, a keyed one way function to the random 
number using a first. key from the trusted authentication <*J p to produce an first encrypted 
outcom e, in both the truatod authenti c ation clii p mid an mitrua tc d authenticati o n cli ip ; 

applying m the untrusted authentic atio n chin, a keved one wav function to the random 

number using a second k e^from the untrusted authentication chip to produc e a second 
encrypted outcome: 

comparing the first enc rypted outcom e and the second encryp ted outcome, without 
knowledge of the first key or the second key , o r ^„nnH i n i n, t hr frujtcd and untnntcd 
ehip% and in the event of a match considering the untrusted chip to be valid; 

otherwise considering the untrusted chip to be invalid. 

2. (Currently amended) A validation protocol according to claim 1 , where the first and 
second keys is -are kept secret. 

3. (Original) A validation protocol according to claim 1, where the domain of the random 
numbers generated is non-deterministic. 

4. (Original) A validation protocol according to claim 1 , where the keyed one-way 
function is a symmetric cryptograph, a random number sequence, or a message authentication 
code. 



5. (Currently amended) A validation protocol according to claim 1 , where the first a nd 
. second k eys bas-haye a minimum size of 128 bits where the one-way function is a symmetric 
cryptographic function. 

6. (Currently Amended) A validation system for determining whether an untrusted 
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authentication is valid, or not, where the system comprises: 

a random number generator to generate a random number; 

a trusted authentication chip, the trusted authentication chip including a keyed one-way 
function and a firstjcey for the one-way functio n, the trusted authentic™ Tp1y ^ thr 
keyed one way , (unction to the rand om numher using the fintf. V, y i„ produce a fi ra » e^ryp W 
outcome : 

an untrusted authentication chip, the untrusted authentication chip including the keyed 
one way function and fee-asecond key, the entrusted a uthentication chip armlvim, the lre YP H 
one wa y f u nction to the random number usins lhe_second key to produce * .^,nH ~^ r ^ 
outcome : and 

comparison means to compare the first encrypted outcome and the second encryp ts 
outcome, without knowledge of the firs t key or the second lr y „ (nn m n, f ■ „ « in b | lt h UlL 
truptcd and the untruotcd chips when the kcj ul one way f m iudon io applied tu t h e mud o m 
number in both the truatcd chip and flic mi U ua l c d-ehip; 

whereby, in the event of a match between the outcomes from the trusted chip and the 
untrusted chip, the untrusted chip is considered to be valid. 

7. (Currently amended) A validation system according to claim 6, where the first and 
second k eys is-are kept secret. 

8. (Original) A validation system according to claim 6, where the trusted authentication 
chip contains a random function to produce random numbers from a seed, and the function 
advances after every random number is produced so that the next random number will be 
produced from a new seed. 



9. (Original) A validation system according to claim 7, where each trusted 
authentication chip contains a random function to produce random numbers from a seed, and 
for a group of authentication chips, each chip has a different initial seed, so that the first call 
to each chip requesting a random number will produce different results for each chip in the 
group. 
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10. (Original) A validation system according to claim 8, where the domain of the random 
numbers generated is non-deterministic. 

1 1 • (Original) A validation system according to claim 6, where the keyed one-way 
functions is a symmetric cryptograph, a random number sequence, or a message authentication 
code. 

12. (Currently amended) A validation system according to claim 6, where the first 

or second k eys for the keyed one-way function haa-haveat least 128 bits where the one-way 
function is a symmetric cryptographic function. 



PAGE 9/11 " RCVD AT 5/20/2004 1:00:16 AM [Eastern Daylight Time]* SVR:USPTO-EFXRF-1/0* DNIS: 87293 26 * CSID:95557762 " DURATION (mm-ss):08-38 



